Lucene search
K

1243 matches found

Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.16 views

PT-2026-41650

Mattermost Plugins versions =11.5 11.1.5 10.13.11 11.3.4.0 fail to properly check for permissions when processing commands in the Gitlab plugin which allows normal users to uninstall instances or setup webhook connections via the gitlab instance option or the /gitlab webhook option commands...

6.5CVSS5.8AI score0.00228EPSS
Exploits0References2
Veracode
Veracode
added 2026/05/16 5:25 a.m.11 views

OS Command Injection

Fleet is vulnerable to Command Injection. The vulnerability is due to improper sanitization of software package metadata used in auto-generated uninstall scripts, allowing specially crafted package metadata to inject and execute arbitrary commands with elevated privileges root on macOS/Linux or...

9.8CVSS6AI score0.00773EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/15 7:57 p.m.10 views

CVE-2026-26191

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. When a...

9.8CVSS6.2AI score0.00773EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/14 9:24 p.m.7 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection in the process that generates uninstall scripts from uploaded software packages, due to improper sanitization of metadata fields. An attacker can execute arbitrary commands with elevated privileges on managed endpoints...

9.8CVSS5.9AI score0.00773EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/14 9:24 p.m.6 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection in the process that generates uninstall scripts from uploaded software packages, due to improper sanitization of metadata fields. An attacker can execute arbitrary commands with elevated privileges on managed endpoints...

9.8CVSS5.9AI score0.00773EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/14 7:2 p.m.36 views

CVE-2026-26191 Fleet vulnerable to OS command injection in software packages

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. When a...

6CVSS0.00773EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/14 7:2 p.m.10 views

CVE-2026-26191 Fleet vulnerable to OS command injection in software packages

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. When a...

6CVSS6.2AI score0.00773EPSS
Exploits0References2
CVE
CVE
added 2026/05/14 7:2 p.m.27 views

CVE-2026-26191

Fleet prior to version 4.81.0 is affected by a vulnerability in the software installer pipeline where metadata from uploaded packages (pkg, deb, rpm, exe, msi) is used to generate uninstall scripts without proper sanitization. A crafted package could cause arbitrary commands to run with root priv...

9.8CVSS6.2AI score0.00773EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/05/14 1:17 p.m.7 views

GHSA-9VCR-G537-3W5V Fleet vulnerable to OS command injection in software packages

Summary A vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. Impact When a software package .pkg, .deb, .rpm, .exe, or .msi is uploaded...

6CVSS6.2AI score0.00773EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/05/14 1:17 p.m.7 views

Fleet vulnerable to OS command injection in software packages

Summary A vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. Impact When a software package .pkg, .deb, .rpm, .exe, or .msi is uploaded...

9.8CVSS6.2AI score0.00773EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.12 views

PT-2026-40971

Name of the Vulnerable Software and Affected Versions Fleet versions prior to 4.81.0 Description A flaw in the software installer pipeline allows a crafted software package to execute arbitrary commands as root on macOS and Linux, or as SYSTEM on Windows, when an uninstall is triggered. When...

9.8CVSS6.2AI score0.00773EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the gethfree function in the USB gadget subset not decrementing the reference count. As a result,...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2026/05/07 8:31 p.m.10 views

How to Disable Google's Gemini in Chrome

Chrome users were caught off guard by a 4-GB Google AI model baked into Chrome, sparking privacy concerns. The good news: You can easily uninstall it. The bad? You might not want to...

5.8AI score
Exploits0
Hacker One
Hacker One
added 2026/04/26 10:35 p.m.27 views

Shopify: Missing HMAC validation on /uninstall webhook in Shopify/sample-django-app reference template

Repository: https://github.com/Shopify/sample-django-app Description The /uninstall webhook endpoint in sample-django-app processes incoming requests without verifying the X-Shopify-Hmac-Sha256 header. Shopify explicitly requires this validation as a mandatory security measure for all webhook...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/13 7:23 p.m.2 views

CVE-2026-4162

The Gravity SMTP plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access a...

7.1CVSS5.8AI score0.00251EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/04/13 10:29 a.m.5 views

WordPress Gravity SMTP plugin <= 2.1.4 - Missing Authorization to Authenticated (Subscriber+) Plugin Uninstall vulnerability

Missing Authorization to Authenticated Subscriber+ Plugin Uninstall vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin Gravity SMTP versions = 2.1.4...

7.1CVSS5.8AI score0.00251EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2026/04/10 7:39 p.m.11 views

Directory Traversal

Overview uv is an An extremely fast Python package and project manager, written in Rust. Affected versions of this package are vulnerable to Directory Traversal through the uninstall process when handling RECORD entries containing relative paths that traverse outside the intended installation...

3.1CVSS6.3AI score
Exploits0References2
OSV
OSV
added 2026/04/10 7:39 p.m.3 views

GHSA-PJJW-68HJ-V9MW uv vulnerable to arbitrary file deletion through RECORD entries

Impact Wheel RECORD entries can contain relative paths that traverse outside of the wheel’s installation prefix. In versions 0.11.5 and earlier of uv, these wheels were not rejected on installation and the RECORD was respected without validation on uninstall. uv uses the RECORD to determine files...

2.1CVSS5.9AI score
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/04/10 7:39 p.m.7 views

uv vulnerable to arbitrary file deletion through RECORD entries

Impact Wheel RECORD entries can contain relative paths that traverse outside of the wheel’s installation prefix. In versions 0.11.5 and earlier of uv, these wheels were not rejected on installation and the RECORD was respected without validation on uninstall. uv uses the RECORD to determine files...

5.9AI score
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/04/10 12:31 p.m.3 views

EUVD-2026-21356

The Gravity SMTP plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access a...

7.1CVSS5.8AI score0.00251EPSS
Exploits0References3
Rows per page
Query Builder